note
jrsimmon
<p>
It shouldn't be a question of how hard, rather it should be a question of when. Given the [http://perlmonks.org/?node_id=3989;BIT=password%20hash%20salt;CA;Wi;Tu;CQ;D;M|large number of nodes] discussing [id://469778|exactly this], many with advice from the [gods], I have no doubt a sane security policy can be put in place.
</p>
<p>
The real questions are:
<ul>
<li>When?</li>
<li>How will the users be informed?</li>
</ul>
</p>
784158
784228